I am currently setting up WebAuthn for a service similar to Rancher using Keycloak. I have successfully configured WebAuthn and it is working as expected. To further enhance security, I have whitelisted specific AAGUIDs to enable only YubiKeys.